What Are Roles, Rules, and Security Classes?

A role is a set of access rights that allow a user access to the system. Roles are task-based meaning that they are intended to describe a job that a user performs, rather than describing the user.

Rules are contained in security classes. They determine how the application information modeler wants to allow user access to a securable object. . Security classes are designed to contain the rules needed to provide the access a user needs to perform a task.

After creating roles and security classes, you can assign security classes to roles, and then assign roles to actors within the system.

Illustration: Actors, Roles, Security Classes, and Rules